CSEC 490: Information Security Risk Assessment for Non-Profit Organizations

Students taking this course will gain real-world experience by partnering with a non-profit, community-based organization to assess information security needs and propose recommendations that improve the organization's security and privacy practices. Within the context of an assigned non-profit organization, students will work in teams to conduct a security risk assessment using industry standards as guidance; write a formal risk assessment report for the organization's management; identify and propose cost-effective security safeguards that may consist of security policies, technologies, or procedures; define a plan to test, monitor, and train system users on recommended security safeguards.